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* NOTICES * 

JPO and NCI PI are not responsible for any 
damages caused by the use of this translation. 

1. This document has been translated by computer. So the translation may not reflect the original 
precisely. 

2. **** shows the word which can not be translated. 
3.1n the drawings, any words are not translated. 



CLAIMS 



[Claim(s)] 

[Claim 1] A file memory means to memorize the multiple files enciphered using two or more 
encryption algorithms, A description storage means to match and memorize an operator s body 
information and decryption algorithm, A decryption algorithm specification means to search said 
description storage means and to specify a decryption algorithm based on an operator s body 
information that it was inputted from the exterior, A processing means to decode the file memorized 
by said file memory means with the decryption algorithm specified by said decryption algorithm 
specification means, and to access it, The computer system characterized by making accessible 
only the file which can be decoded with the decryption algorithm specified using a preparation and 
body information. 

[Claim 2] A file memory means to memorize the multiple files enciphered using two or more 
encryption algorithms, An access-permission condition storage means to match and memorize an 
operator's body information that access of the file memorized by said file memory means and this 
file is accepted, A detection means to detect the demand of access to the file memorized by said 
file memory means, A means to require the input of an operator s body information when said 
detection means detects said demand, An access-permission distinction means to distinguish 
whether access to the file memorized by said file memory means based on the physical information 
inputted from the exterior is accepted with reference to said access-permission condition storage 
means, When access was permitted and said access-permission distinction means distinguishes The 
computer system characterized by having the access means which makes said file accessible by 
loading the program for performing the algorithm which decodes this file, and performing this 
program. 

[Claim 3] It is the computer system according to claim 1 or 2 characterized by what said encryption 
algorithm is an algorithm compressed while enciphering data, and said decryption algorithm consists 
of an algorithm elongated while decrypting the enciphered data. 

[Claim 4] The computer system according to claim 1, 2, or 3 characterized by what a means to 
display the message which stimulates the input of the body information by body information reading 
means to read said operator's body information, and said body information reading means is included 
for. 

[Claim 5] It is the computer system according to claim 4 which said body information consists of 
fingerprint data, data of a retina pattern, data of a voice pattern, or data of a face image, and is 
characterized by what said body information reading means consists of a fingerprint reader, a retina 
pattern reader, a voice pattern reader, or a face image reader for. 



[Translation done.] 
* NOTICES * 
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JPO and NCI PI are not responsible for any 
damages caused by the use of this translation. 

1 This document has been translated by computer. So the translation may not reflect the original 
precisely. 

2.**** shows the word which can not be translated. 
3.1n the drawings, any words are not translated. 



DETAILED DESCRIPTION 



[Detailed Description of the Invention] 
[0001] 

[Field of the Invention] Especially this invention relates to the computer system which distinguishes 
whether it has the authority to perform each processing from body information, such as a 
fingerprint, about the security technique of a computer. 
[0002] 

[Description of the Prior Art] When the user name and password which registered the user 
(operator) name and the password into the computer beforehand, were made to enter a user name 
and a password at the time of a log on etc. for the security of a computer, and were entered are not 
registered into a computer system, the method of not accepting a log on is learned. 
[0003] 

[Problem(s) to be Solved by the Invention] However, a burden is placed on a user in security with a 
user name, a password, etc., such as setting up a password or changing a password periodically so 
that others cannot presume easily. Moreover, when user ID etc. was set up by the system 
administrator, the burden of memorizing and making a note of user ID was placed. Furthermore, 
whenever there was a demand from a computer system, a user name, a password, user ID, etc. had 
to be inputted from the keyboard etc., and actuation was complicated. 

[0004] since [ moreover, ] a note of the user ID and the password which were given [ whether 

activation is permitted and or not ] by the approach of checking by user ID is made, or there is the 

need for memorizing etc., a user during a session and the others may take a seat by every 

place in a session — security — taking all possible measures — having been hard . 

[0005] This invention was not made in view of the above-mentioned actual condition, and aims at 

offering the computer system which does not apply the burden of security to a user. 

[0006] 

[Means for Solving the Problem] In order to attain the above-mentioned object, the computer 
system concerning the 1st invention A file memory means to memorize the multiple files enciphered 
using two or more encryption algorithms, A description storage means to match and memorize an 
operators body information and decryption algorithm, A decryption algorithm specification means to 
search said description storage means and to specify a decryption algorithm based on an operator's 
body information that it was inputted from the exterior, A processing means to decode the file 
memorized by said file memory means with the decryption algorithm specified by said decryption 
algorithm specification means, and to access it, It is characterized by making accessible only the file 
which can be decoded with the decryption algorithm specified using a preparation and body 
information. 

[0007] In order to attain the above-mentioned object, the computer system concerning the 2nd 
invention A file memory means to memorize the multiple files enciphered using two or more 
encryption algorithms, An access-permission condition storage means to match and memorize an 
operator's body information that access of the file memorized by said file memory means and this 
file is accepted, A detection means to detect the demand of access to the file memorized by said 
file memory means, A means to require the input of an operator's body information when said 
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detection means detects said demand, An access-permission distinction means to distinguish 
whether access to the file memorized by said file memory means based on the physical information 
inputted from the exterior is accepted with reference to said access-permission condition storage 
means, When access was permitted and said access-permission distinction means distinguishes The 
program for performing the algorithm which decodes this file is loaded, and it is characterized by 
having the access means which makes said file accessible by performing this program. 
[0008] According to these configurations, a decryption algorithm is specified based on an operators 
body information. Therefore, each operator can access only the file which can be decoded using this 
decryption algorithm, and cannot access other files. Therefore, only those who have just authority 
can access each file. Moreover, it is not necessary to enter a user name, a password, etc. one by 
one, and operability is also high. 

[0009] Said encryption algorithm is an algorithm compressed while enciphering data, and, as for said 
decryption algorithm, what is consisted of an algorithm elongated while decrypting the enciphered 
data is desirable. Such a configuration, then the limited file memory means of capacity can be used 
effectively. 

[0010] A means to display the message which stimulates the input of the body information by body 
information reading means to read said operator s body information, and said body information 
reading means may be established. 

[001 1] Said body information consists of fingerprint data, the data of a retina pattern, data of a 
voice pattern, data of a face image, etc. In this case, said body information reading means consists 
of a fingerprint reader, a retina pattern reader, a voice pattern reader, a face image reader, etc. 
[0012] 

[Embodiment of the Invention] Hereafter, the gestalt of implementation of this invention is explained 
with reference to a drawing. 

(Gestalt of the 1st operation) With reference to drawing 1 - drawin g 4 , the computer system 
concerning the gestalt of implementation of the 1st of this invention is explained. 
[0013] As shown in drawing 1 , this computer system consists of buses B which connect these with 
a fingerprint reader 1, a keyboard 2, an indicating equipment 3, external storage 4, memory 5, and a 
control section 6. 

[0014] A fingerprint reader 1 reads the image of human being's fingerprint, and supplies the image 
data to the body 1 of a computer through a RS232C interface etc. 

[0015] A keyboard 2 is an input unit for inputting data, such as an alphabetic character, a notation, 
and a figure. An indicating equipment 3 consists of CRT, a liquid crystal display, etc., and displays 
the message to the data inputted from the keyboard 2, and an operator etc. 

[0016] External storage 4 consists of hard disk drive units etc., and where the file (a program, a text 
file, an image file, etc. are included) which a control section 6 processes is enciphered, it is 
memorized. For example, when using this computer system by three persons, A, B, and C, as shown 
in drawing 2 , the file which A accesses is enciphered by encryption algorithm Ha, the file which B 
accesses is enciphered by encryption algorithm Hb, and the file which C accesses is enciphered by 
encryption algorithm He. External storage 4 memorizes a control program 1 1 and a user master file. 
A user master file is the fingerprint data of A, B, and C, encryption program PHa-PHc, and 
decryption program PHa-1-PHc-1. It matches and memorizes. A control program 11 controls 
encryption and a decryption program. The control program 1 1 is set up so that it may start following 
starting of OS (operating system). 

[0017] Memory 5 consists of RAM (Randam Access Memory) etc., and functions as main memory, a 
work area, etc. of a control section 6. A control section 6 consists of MPU (Micro Processing Unit) 
etc., performs the program stored in main memory, and directs writing or reading of fingerprint 
reading, image display, and data to a fingerprint reader 1, an indicating equipment 3, and external 
storage 4, respectively. Moreover, a control section 6 performs processings, such as processing of 
data, such as an alphabetic character inputted from processing of the image data of the fingerprint 
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read by the fingerprint reader 1 and a keyboard 2, processing of the screen data displayed on an 
indicating equipment 3, reading processing of the data from external storage 4, and writing of the 
data to external storage 4. 

[0018] Next, actuation of the computer system of the gestalt of this operation is explained with 
reference to the flow chart of drawing 3 . If this computer system is started, first, OS will be started 
(S1 1), then a control program 1 1 will be started (S12). 

[0019] Next, a control program 1 1 displays the message of a purport which should input a fingerprint 
on a display 3 (S13). Furthermore, reading of a fingerprint is directed to a fingerprint reader 1 (S14). 
An operator inputs a fingerprint from a fingerprint reader 1 according to this display (S15). A 
fingerprint reader 1 stores the read image data (image data of a fingerprint) in memory 5 through an 
interface. A control program 1 1 codes the image data of the fingerprint stored in memory 5, and 
generates coding fingerprint data (S16). Next, coding fingerprint data and the fingerprint data of a 
user master file are collated (S17), and it distinguishes whether there is any match (S18). 
[0020] When there is a match, it judges that it is admitted that that operator uses this computer 
system, and as shown in drawing 4 , a control program 1 1 and encryption / decryption program 
corresponding to main memory (memory 5) are made resident (S19). The program data enciphered 
using the decryption program are decrypted at the time of data reading ****, and henceforth it 
reads, and a program is performed at the time of data writing ****, enciphering using an encryption 
program and writing in program data etc. 

[0021] On the other hand, when the image data of the fingerprint read in the fingerprint reader 1 
judges that it is in agreement with neither of the fingerprint data registered into the user master file 
(S18), a control program 1 1 judges that it is not admitted that that operator uses this computer 
system, and stops the resident of the control program 11 to main memory (S20). Henceforth, it 
shifts to the usual actuation. 

[0022] According to such a configuration, encryption / decryption program corresponding to 
[ utilization time / of those who are permitted the activity of a computer ] an operator in a control 
program 1 1 resides in main memory permanently. Therefore, as shown in drawing 2 , the various 
data stored in external storage 4 can be decoded by the decryption program, can be read as a usual 
program or data, and can be processed. Moreover, under control of a control program 1 1 , an 
encryption program can be used, it can encipher, and the data created and processed can be stored 
in external storage 4. 

[0023] And only encryption / decryption program corresponding to the operator specified by coding 
fingerprint data resides in main memory permanently. Therefore, each operator cannot access the 
file enciphered by the encryption algorithm for other operators. Therefore, access to each file can 
be limited to those who have just authority. On the other hand, when an operator is a non- 
registrant, a control program 1 1 does not reside in main memory permanently. Therefore, the 
program and the various data which are stored in external storage 4 cannot be restored. Therefore, 
it becomes difficult to use this system itself itself. 

[0024] For example, when Operator A uses this computer system, A will be distinguished if the 
coding fingerprint data and the fingerprint data of A of a user master file which the fingerprint was 
inputted at step S15, and the image data of this fingerprint was coded at step S16, and were 
generated from the image data of the fingerprint of A at step S18 are in agreement. The encryption 
program PHa for A and its decryption program PHa-1 reside in main memory permanently with a 
control program 11 (S19). 

[0025] Therefore, Operator A can access decrypting the programs 1 and 2 enciphered using the 
encryption program PHa, text files 1-3, an image file, etc. by decryption program PHa-1, can 
encipher further the document and image which were created and processed, and can store in 
external storage 4. 

[0026] Here, even if A tends to access the file in which B has an access privilege, since the file of B 
is enciphered by the encryption program PHb, this cannot be decrypted by decryption program 
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PHa-1 which resides in main memory permanently. Therefore, A cannot access the file of B. 
Therefore, although external storage 4 is shared, a file can be used for the others in the state of 
secrecy. 

[0027] (Gestalt of the 2nd operation) In the gestalt of the 1st operation, although fingerprint data 
were used for the personal authentication at the time of a log in, it is also possible to attest an 
operator for example, whenever access of a file is required. The gestalt of the 2nd operation which 
performs such processing is explained below. 

[0028] The physical configuration of the computer system of the gestalt of this operation is the 
same as the configuration fundamentally shown in drawing 1 . On the other hand, logically, the 
computer system of the gestalt of this operation consists of OS (operating system)21 and a file 
control program 31, as shown in drawing 5 . 

[0029] OS (operating system)21 is equipped with the input section 22 which detects the alter 
operation of a keyboard 2, the processing section 24 which performs processing according to the 
input directions detected by the input section 22, and the display and control section 23 which 
controls a display 3. The processing section 24 contains the file-processing section 25 for 
accessing a file. 

[0030] On the other hand, the file control program 31 detects that the event occurred, and when 
the event is a thing about file manipulation, it is a program for or or controlling [ to which the file 
manipulation is permitted ] whether refusal is carried out. 

[0031] It is an example when drawing 5 presupposes that OS21 is DOS (disk operating system), and 
the file control program 31 consists of the input hook section 32, the driver section 33, and a user 
master file 39. 

[0032] When an interrupt request is published, the input hook section 32 does not make the 
processing which should be performed when the file control program 31 does not exist (when an 
event occurs) perform, but makes it process in the driver section 33 in advance of this processing 
(it hooks). 

[0033] The user master file 39 consists of every user and a list of files which can be operated for 
every fingerprint data, as shown in drawing 6 . In addition, this user master file 39 very thing is set 
up so that only the manager of this computer system can access. The driver section 33 consists of 
the content distinction section 34 of processing, the message indicator section 35, the coding 
section 36, the distinction section 37, and the transmitting section 38. 

[0034] The content distinction section 34 of processing analyzes the input incorporated by the input 
hook section 32, and when it is being distinguished and directed whether the content is directing 
actuation of a file, it provides the distinction section 37 with input while it directs reading of a 
fingerprint in the coding section 36. Moreover, when the hooked input is not directing actuation of a 
file, a detecting signal is sent to the transmitting section 38. 

[0035] The message indicator section 35 displays the screen to which the input of fingerprint 
information is urged on a display 3 through the display and control section 23 of OS21, when the 
content distinction section 34 of processing distinguishes saying "The input is directing actuation of 
a file." Moreover, when the distinction section 37 judges "the operator is not permitted the 
demanded file manipulation", the screen in which it is shown that access was refused is displayed 
on a display 3 through a display and control section 23. 

[0036] The coding section 36 directs reading of a fingerprint to a fingerprint reader 1 according to 
the directions from the content distinction section 34 of processing, and captures the image of a 
fingerprint from a fingerprint reader 1, codes this, and generates coding fingerprint data. 
[0037] The distinction section 37 distinguishes whether based on the coding fingerprint data 
generated in the coding section 36, those who have the coding fingerprint data have the authority to 
access an applicable file, with reference to the user master file 39. And when it is judged that it has 
authority, the signal with which access is permitted to the transmitting section 38 is transmitted. 
Moreover, when it did not have authority and distinguishes, the message of a purport which does not 
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permit access to the message indicator section 35 is displayed. 

[0038] Actuation of the computer system of the gestalt of the 2nd operation is explained with 
reference to the flow chart of drawing 7 and drawing 8 . First, the charge of the power source of a 
computer starts OS21 (S31). Next, the file control program 31 starts (S32). If the input hook section 
32 of the file control program 31 starts, it will rewrite the address of the processing corresponding 
to the interrupt request which the input section 22 of OS21 generates to the address of the 
processing section 24 to the driver section 33. A paraphrase rewrites transmission places, such as a 
detecting signal of the key stroke which the input section 22 generates, to the address of the input 
hook section 32 (S33). 

[0039] For example, in the case of MS-DOS (trademark) currently provided with OS21 from 
Microsoft Corp., let the address of the processing corresponding to the interrupt INT 21 of the 
system call about an input be the address of the driver section 33 among the interruption table 
created on the memory 5 which functions as main memory. Above, the setting-operation at the time 
of starting is ended. 

[0040] In this condition, if there is a certain input from a keyboard 2, the input section 22 of OS21 
will distinguish this alter operation, and will emit an interrupt request if needed (generating of IO 
event). Although processing corresponding to this interrupt request is usually performed in the 
processing section 24, it is rewritten by the address of the driver section 33 at the time of starting 
of the file control program 31. Therefore, processing shifts to the driver section 33 and is hooked 
( drawing 8 , S41). 

[0041] The content distinction section 34 of processing analyzes the detecting signal inputted from 
OS21 (S42), and distinguishes whether the content of an input is directing actuation (an execution 
file is started [ opening a file, ]) of a file (S43). When the content of an input is directing actuation of 
a file, reading of a fingerprint is directed to a fingerprint reader 1 through the coding section 36 
(S44). Furthermore, the display of the message which urges the input of a fingerprint to the message 
indicator section 35 is directed (S45). The message indicator section 35 displays the message which 
urges the input of a fingerprint to an indicating equipment 3 through the display and control section 
23 of OS21 according to directions of the content distinction section 34 of processing. 
[0042] If the image entry of data of the fingerprint from a fingerprint reader 1 is stood by (S46) and 
image data is inputted, the coding section 36 will change this image data into coding fingerprint data, 
and will provide the distinction section 37 with it (S47). The distinction section 37 distinguishes 
whether actuation of a file in which those who have coding fingerprint data supplied from the coding 
section were directed by alter operation is accepted with reference to the user master file 39 (S48). 

[0043] If the distinction section 37 judges that access is accepted, it will make an encryption 
program required in order to access the file at main memory, and a decryption program resident 
(S49). Then, the distinction section 37 supplies a detecting signal to the transmitting section 38. The 
transmitting section 38 hands over processing in the processing section 24 of OS21 (S50). 
[0044] Henceforth, the processing section 24 decrypts and reads the file directed by the decryption 
program, enciphers by the encryption program and writes in the data processed and generated. If 
access of the file is completed, the file control program 31 will delete the compression program and 
decryption program on main memory. 

[0045] On the other hand, when it is judged at step S48 that file manipulation is not accepted by the 
distinction section 37, the message indicator section 35 displays the message which refuses the file 
manipulation of "access is not permitted" to an indicating equipment 3 through the display and 
control section 23 of OS21 (S51). When the content distinction section 34 of processing judges that 
the content of directions is not actuation of a file at step S43, processing is handed over by the 
processing section 24 of OS21 by the transmitting section 38 (S52). The processing section 24 
performs processing corresponding to these directions. 

[0046] Moreover, in case shut [ a system ], after rewriting the address of the processing 
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corresponding to the interrupt request which the input section 22 of OS21 generates to the usual 
address, it ends. According to such a configuration, when starting of the program of arbitration is 
directed on a desktop, it is distinguished according to the user master file 39 whether these 
directions are hooked in the input hook section 32, and access is permitted in the distinction 
section 37, only in authorization, corresponding encryption / decryption program is started and that 
file can be accessed, for example. 

[0047] As explained above, in the file control program's 31 distinguishing whether it has the 
authority to incorporate input directions automatically and to access the directed file based on 
coding fingerprint data and having authority, according to the gestalt of this 2nd operation, it permits 
access of that file. Therefore, the security protection of a computer can be performed, without 
applying a burden to a user. 

[0048] Moreover, file manipulation can be controlled only by installing the file control program 31, 
and it is not necessary to add correction to the existing OS, an application program, etc., and can be 
used as it is. 

[0049] In addition, in the above explanation, although the file control program 31 rewrote the 
address of the processing corresponding to the interrupt request of the input section 22 at the time 
of starting, at the time of install of the file control program 31, the address of the processing 
corresponding to an interrupt request may be rewritten, and you may rewrite to the original address 
at the time of uninstallation. 

[0050] As for the program which realizes encryption algorithm and it, what is compressed while 
enciphering data is desirable, and, as for the program which realizes said decryption algorithm and it, 
what is elongated while decrypting the enciphered data is desirable. According to such a 
configuration, the storage capacity of external storage 4 can be used effectively. 
[0051] OS21 is not limited to DOS but the thing of arbitration can be used for it for the so-called 
window system, unix, etc. What is necessary is just to distinguish whether an operator has the 
authority to access a file, while detecting predetermined events, such as access to a file or a 
demand of interruption, and generating of a link, suitably and urging a fingerprint entry of data 
according to the property of each OS in using these OS's. 

[0052] In addition, a fingerprint reader 1 and the body of a computer may be connected in a network 
etc. 

[0053] Although coding fingerprint data were used with the gestalt of the above operation for 
personal authentication, the class of fingerprint data is arbitrary. For example, it is also possible to 
carry out the Fourier transform of the image data of a fingerprint, to extract the topology, and to 
use this as fingerprint data. In this case, for example, whenever [ correlation / of the topology 
registered beforehand and the topology extracted from the image read with the fingerprint reader ] 
etc. is measured, and when whenever [ correlation ] is more than fixed level, it is judged that two 
fingerprints are in agreement. 

[0054] Although the fingerprint was used with the gestalt of the above operation for personal 
authentication, it is also possible to use the blood vessel pattern of a retina, a voice pattern, the 
image of a face, etc. as authentication information. 

[0055] In addition, the computer of this invention cannot be based on the system of dedication, but 
can be realized using the usual fingerprint reader etc. and the usual computer system. For example, 
the computer system which performs above-mentioned processing can be constituted by installing 
this program from the media (a floppy disk, CD-ROM, etc.) which stored the program for performing 
above-mentioned actuation in the computer which connected the fingerprint reader. 
[0056] Moreover, communication media (medium which holds a program temporarily and fluidly like a 
communication line, a communication network, and communication system) are sufficient as the 
medium for supplying a program to a computer. For example, this program may be put up for the 
notice plate (BBS) of a communication network, and this may be distributed through a network. And 
above-mentioned processing can be performed by starting this program and performing like other 
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application programs under control of OS. 
[0057] 

[Effect of the Invention] Secrecy can be held without almost applying a burden to a user based on a 
user's body information according to this invention, as explained above. 



[Translation done.] 
* NOTICES * 

JPO and NCI PI are not responsible for any 
damages caused by the use of this translation. 

1 This document has been translated by computer. So the translation may not reflect the original 
precisely. 

2.**** shows the word which can not be translated. 
3.1n the drawings, any words are not translated. 



DESCRIPTION OF DRAWINGS 



[Brief Description of the Drawings] 

[Drawing 1] It is the block diagram showing the physical configuration of the computer system by 
the gestalt of operation of the 1st of this invention. 

[Drawing 2] It is the conceptual diagram showing the configuration of external storage. 

[Drawing 3] It is the flow chart which shows the control processing at the time of starting performed 

in the control section of drawing 1 . 

[Drawing 4] It is drawing showing the situation of encryption / decryption program **** data 
processing. 

[Drawing 5] It is the block diagram showing the physical configuration of the computer system by 

the gestalt of operation of the 2nd of this invention. 

[Drawin g 6] It is drawing having shown the example of a user master file. 

[Drawing 7] It is the flow chart which shows the processing at the time of the startup of the 

computer system of the gestalt of the 2nd operation. 

[Drawing 8] It is the flow chart which shows the processing at the time of the alter operation of the 
computer system of the gestalt of the 2nd operation. 
[Description of Notations] 

1 Fingerprint Reader 

2 Keyboard 

3 Display 

4 External Storage 

5 Memory 

6 Control Section 

1 1 Control Program 



[Translation done.] 
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DRAWINGS 



[ Drawin g 1] 
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[Drawing 4] 
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[Drawing 6] 
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